Change Log

CIS-CAT Pro Dashboard v1.1.8

CIS-CAT Pro Updates

Support for NIST vulnerability JSON data feeds version 1.1 including the latest information. Important: because of NIST XML Vulnerability Feed retirement, import of NVD feeds in XML format is no longer supported in the Dashboard.

Component documentation modified to indicate official support of Google Chrome web browser for CIS-CAT Pro Dashboard.

CIS-CAT Pro Dashboard v1.1.6

SYSTEM ENHANCEMENTS

Supports MacOS 10.13 CIS Benchmark.

Updated, more consistent schema validation process upon vulnerability report import. Per existing functionality, reports failing validation will generate a Dashboard inbox alert and will be moved to the error directory.

New users will be assigned ROLE_USER and ROLE_BASIC_USER on default upon creation.

Resolved error on configuration assessment report display when no evidence is collected.

HTML reports display 4 digit Benchmark version numbers

DOCUMENTATION UPDATES

Dashboard and Assessor documentation configuration updated for tool integration. Instructions in the online Dashboard documentation is now more clearly defined by modifying some text and moving around sections of the instructions.

CIS-CAT Pro Dashboard v1.1.5

The CIS-CAT Pro Dashboard's HTML report has been modified in style to match the Assessor's HTML report for consistency purposes.

For Dashboard Installer users, existing database settings will be detected and used instead of changed to CIS-CAT recommended settings.

SYSTEM ENHANCEMENTS

Oracle users upgrading from Dashboard versions prior to 1.1.3 will benefit from better database performance due to established indexing. Oracle users who have upgraded to Dashboard versions 1.1.3 or later to 1.1.5, will obtain the necessary indexes on upgrade.

The Installer has been whitelisted with Symantec anti-virus.

BUGS

Resolved an issue for SQL Server users when drilling down on the Benchmark View chart.

CIS-CAT Pro Dashboard v1.1.4

FUNCTIONAL ENHANCEMENTS

Installation and Upgrade Tool: A step-by-step embedded tool for the install/upgrade of dashboard that steps members through each process.

Graphs Viewable With or Without Internet Connectivity: CIS-CAT Pro Dashboard can now display assessment results in a graphical form whether your application server is on or off-line.

SYSTEM ENHANCEMENTS

MySQL database driver replaced by Maria DB driver (increase performance). IMPORTANT: in ccpd-config.yml, "com.mysql.cj.jdbc.Driver" driverClassName needs to be replaced by "org.mariadb.jdbc.Driver". Can be done with the Installer or manually.

Jobs run in succession (queue) to avoid simultaneous access to the database.

BUGS

Fixed reset password link and password expired redirection for users using a webserver.

fixed a bug from 1.0.5 where importing subsequent ARF files would create additional Target System records

CIS-CAT Pro Dashboard v1.0.5

FUNCTIONAL ENHANCEMENTS

Added Title information to the alert dialog

User Favorites - added a user favorites section where users can mark their favorite benchmarks or target systems. The Benchmark Dashboard and Target System Dashboard now use user favorites to display the options available for graphing

Inbox UI Improvements

added an All/Unread toggle to the User Inbox to easily view only unread messages.

added orange text to unread tasks in the User Inbox, to provide a visual distinction from other types of unread alerts.

added batch delete and mark read/unread to the User Inbox

Exception workflow - added alerting to recipient list when an exception is approved/rejected. Previously the alert would just go to the requester, now it will go to everyone on the recipient list, which can be managed in the admin section

added security to exception end dating to only allow ROLE_ADMIN to end date exceptions

Exception End date alert - recipient list will be notified when an exception is end dated

SYSTEM ENHANCEMENTS

Target System Primary Identification customization - added ability to customize the primary identifier used for target systesms at an application level, and per target system. By default, hostname will be the primary identifier of all target systems, but you can now change to use another identifier type, such as fqdn, mac-address, or a custom identifier.

CIS-CAT Pro Dashboard v1.0.4

Exception Workflow - when an exception is created it will go into a Pending status, and an task will be created to approve/reject the exception. this defaults to users with ROLE_ADMIN, but is configurable

User Inbox - new inbox on the menu bar for alerts and workflow tasks

Exceptions View on Test Results - a new view was added to Test Results to show all exceptions that apply to that test result in a single list.

Exceptions by Target System - the target system screen now displays all exceptions that apply to that target

Functional Area now applicable by action - the functional areas for security use to only be able to control access at the controller level, administrators can now control access at the action level, whichi is much more granular

Fixed scoring inconsistency between the Assessment Results List, individual Assessment Results View screen, and the HTML export of the assessment results. The inconsistancy was the result of weighting of recommendations and exceptions added to recommendations